In Open vSwitch (OvS) 2.7.0, while parsing an OFPTQUEUEGETCONFIGREPLY type OFP 1.0 message, there is a buffer over-read that is caused by an unsigned integer underflow in the function ofputil_pull_queue_get_config_reply10
in lib/ofp-util.c
.
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "binary_name": "openvswitch-common", "binary_version": "2.5.2-0ubuntu0.16.04.2" }, { "binary_name": "openvswitch-common-dbgsym", "binary_version": "2.5.2-0ubuntu0.16.04.2" }, { "binary_name": "openvswitch-dbg", "binary_version": "2.5.2-0ubuntu0.16.04.2" }, { "binary_name": "openvswitch-ipsec", "binary_version": "2.5.2-0ubuntu0.16.04.2" }, { "binary_name": "openvswitch-ipsec-dbgsym", "binary_version": "2.5.2-0ubuntu0.16.04.2" }, { "binary_name": "openvswitch-pki", "binary_version": "2.5.2-0ubuntu0.16.04.2" }, { "binary_name": "openvswitch-switch", "binary_version": "2.5.2-0ubuntu0.16.04.2" }, { "binary_name": "openvswitch-switch-dbgsym", "binary_version": "2.5.2-0ubuntu0.16.04.2" }, { "binary_name": "openvswitch-switch-dpdk", "binary_version": "2.5.2-0ubuntu0.16.04.2" }, { "binary_name": "openvswitch-switch-dpdk-dbgsym", "binary_version": "2.5.2-0ubuntu0.16.04.2" }, { "binary_name": "openvswitch-test", "binary_version": "2.5.2-0ubuntu0.16.04.2" }, { "binary_name": "openvswitch-testcontroller", "binary_version": "2.5.2-0ubuntu0.16.04.2" }, { "binary_name": "openvswitch-testcontroller-dbgsym", "binary_version": "2.5.2-0ubuntu0.16.04.2" }, { "binary_name": "openvswitch-vtep", "binary_version": "2.5.2-0ubuntu0.16.04.2" }, { "binary_name": "openvswitch-vtep-dbgsym", "binary_version": "2.5.2-0ubuntu0.16.04.2" }, { "binary_name": "ovn-central", "binary_version": "2.5.2-0ubuntu0.16.04.2" }, { "binary_name": "ovn-central-dbgsym", "binary_version": "2.5.2-0ubuntu0.16.04.2" }, { "binary_name": "ovn-common", "binary_version": "2.5.2-0ubuntu0.16.04.2" }, { "binary_name": "ovn-common-dbgsym", "binary_version": "2.5.2-0ubuntu0.16.04.2" }, { "binary_name": "ovn-docker", "binary_version": "2.5.2-0ubuntu0.16.04.2" }, { "binary_name": "ovn-docker-dbgsym", "binary_version": "2.5.2-0ubuntu0.16.04.2" }, { "binary_name": "ovn-host", "binary_version": "2.5.2-0ubuntu0.16.04.2" }, { "binary_name": "ovn-host-dbgsym", "binary_version": "2.5.2-0ubuntu0.16.04.2" }, { "binary_name": "python-openvswitch", "binary_version": "2.5.2-0ubuntu0.16.04.2" } ] }